Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
File: XTTdv33KsQy_aCKXkh61gS2QUHE.mft (raw, json)
Hash identifier: UA2xnO4Res+qsMPJsvxvoQVz24ohr10TJyJpkyapXcI=
Subject key identifier: 9F:22:7A:26:DE:01:D7:CC:2A:01:18:18:55:1A:AC:1C:8F:2A:D6:9A
Authority key identifier: 5D:34:DD:BF:7D:CA:B1:0C:BF:68:22:97:92:1E:B5:81:2D:90:50:71
Certificate issuer: /CN=5d34ddbf7dcab10cbf682297921eb5812d905071
Certificate serial: 019358093815210A218A0FBD8341C451BD87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
Manifest number: 026F
Signing time: Sat 23 Nov 2024 08:00:19 +0000
Manifest this update: Sat 23 Nov 2024 08:00:19 +0000
Manifest next update: Sun 24 Nov 2024 08:00:19 +0000
Files and hashes: 1: S5DgK0KnXN1nUPwEHrNb29NenXk.roa (hash: dpHJ7BNk0u1CL3hOerDNaFpCRMBzimjjXyQ3Ikr6uPs=)
2: XTTdv33KsQy_aCKXkh61gS2QUHE.crl (hash: eGHQQoDYuMRjlDiKX6BXesmRmkdnj6UQ70j6bf6LqGQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:09:38:15:21:0a:21:8a:0f:bd:83:41:c4:51:bd:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d34ddbf7dcab10cbf682297921eb5812d905071
Validity
Not Before: Nov 23 08:00:19 2024 GMT
Not After : Nov 24 08:00:19 2024 GMT
Subject: CN=9f227a26de01d7cc2a011818551aac1c8f2ad69a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:72:2b:89:33:85:5b:41:bb:c5:dd:b8:a7:7f:
6e:0c:32:ba:f9:b5:d0:f6:63:33:38:a9:e5:ce:38:
dc:9a:62:5b:b8:e4:e9:73:b2:84:04:da:51:34:49:
e6:33:e0:ad:97:0f:82:42:66:c3:fe:18:21:d7:e3:
40:69:89:4f:8b:53:00:a6:89:0a:ca:3a:13:29:cf:
76:df:c3:66:27:7c:2c:e0:34:b8:55:70:6a:e1:c1:
07:f7:21:d0:6d:5e:d5:89:7c:75:03:e6:f5:06:b4:
40:18:7f:51:74:a3:93:13:dd:45:15:30:78:98:93:
61:cc:3a:98:04:81:d9:d1:46:bd:4b:5f:1f:f6:b9:
af:fa:ca:04:db:22:99:e1:a0:c5:8b:53:47:e9:48:
ab:29:aa:89:71:58:ca:a7:df:95:5e:85:13:f5:44:
e6:9c:41:06:91:81:91:43:0b:94:66:63:b8:42:9a:
88:b6:75:dc:70:fa:66:d3:d6:7a:31:29:91:b4:a6:
5e:9c:c1:63:17:cf:fd:a8:a3:87:1e:13:66:97:d4:
01:be:2a:95:59:7d:dc:6d:e4:43:f0:0c:30:30:6a:
4f:4c:c1:e8:49:ed:c0:4b:7b:5f:c3:cc:9e:0b:f2:
4e:1d:1a:6f:cb:65:ee:07:a5:d1:31:6c:4e:a5:7a:
09:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:22:7A:26:DE:01:D7:CC:2A:01:18:18:55:1A:AC:1C:8F:2A:D6:9A
X509v3 Authority Key Identifier:
keyid:5D:34:DD:BF:7D:CA:B1:0C:BF:68:22:97:92:1E:B5:81:2D:90:50:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:dc:30:5d:a7:d3:91:99:3f:e7:e3:98:38:9a:b4:49:ef:bb:
35:09:06:aa:51:c3:5f:b6:e0:d8:45:3e:50:84:31:8c:14:cd:
4c:8a:9c:51:76:47:86:4e:27:10:ae:47:33:dc:cd:07:02:fb:
32:ef:c1:f1:63:99:d8:90:82:a6:a2:f7:40:80:70:7d:3a:0e:
99:e9:d9:b8:7e:cb:68:30:93:3c:4a:55:51:6a:d9:fb:80:a7:
b1:17:bf:de:3d:33:c2:c0:d7:d7:23:e3:ab:ad:1b:39:64:45:
2b:7e:e1:3b:98:d5:e9:13:0a:ec:c3:07:de:3f:5b:e4:98:b0:
29:61:be:54:f1:a9:c5:a4:71:ae:ff:27:c7:50:35:f5:d8:bf:
6d:dc:4b:5e:39:24:61:ab:d2:b2:ff:b2:5a:77:bf:39:a5:99:
36:75:b2:7c:1d:9d:71:f9:76:c5:94:38:1f:8d:b9:cd:ff:3c:
30:ab:e6:84:97:8d:05:94:55:7d:82:88:55:34:34:73:96:f8:
90:48:78:48:32:e9:79:1f:e2:2e:dc:2c:86:c2:dd:36:8f:57:
d4:d0:7f:b8:1e:e5:b2:03:39:8a:d9:44:a8:c0:5e:94:b1:c2:
df:ca:e1:af:ee:63:f0:a2:68:ea:2d:b4:ba:c4:0d:bc:e1:8b:
3c:7e:eb:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:18:39 2024 by rpki-client on console-fra.rpki-client.org